The right to privacy is a fundamental human right that includes the right for all individuals to know whether information about them is being stored and, if so, for what purpose.
It is essential that businesses handle the personal data of its customers in a lawful and responsible manner. Many countries have enacted privacy legislation to protect an individual’s right to privacy from unlawful or arbitrary interference. Such legislation typically imposes the requirement to take various measures to ensure the security and integrity of personal data. This may require businesses to, among other things, inform customers about the collection, use, retention and disclosure of their personal data and obtain their express and informed consent to such collection, use, retention and disclosure.
Even in countries with more limited privacy legislation, businesses should ensure that they develop and implement policies and procedures on data privacy and ensure that all staff members are adequately trained and apprised of such policies. Businesses should also be transparent with customers, providing corporate privacy policies whenever their data will be collected and stored. These policies should be reviewed and updated on a regular basis to consider IT developments.